[UBUNTU Kinetic,OEM-6.0 0/1] CVE-2023-0469
Thadeu Lima de Souza Cascardo
cascardo at canonical.com
Thu Feb 9 18:46:30 UTC 2023
[Impact]
A double fput on io_uring may lead to a use-after-free condition.
[Potential regression]
io_uring might be broken, lead to kernel lockups, crashes, or memory leaks.
[Further review]
In both cases, all the callers were looked up for any extra fput, all were
considered safe.
[Testing]
io_uring programs exercising the path were used, also under memcg, exercising
memory allocation failure conditions.
Lin Ma (1):
io_uring/filetable: fix file reference underflow
io_uring/filetable.c | 2 --
1 file changed, 2 deletions(-)
--
2.34.1
More information about the kernel-team
mailing list